6544c6636c
Add documentation
2018-10-10 12:23:52 -05:00
b5c13690c0
Add documentation for Zahir Import File Module
2018-10-04 10:12:12 -05:00
d5ad683ba6
More doc updates
2018-08-29 10:59:36 -05:00
88c908665d
Update documentation
2018-08-29 06:24:30 -05:00
086ec5bdfb
Fix generated strings in pdf
2018-08-29 06:24:20 -05:00
fd6880d0d0
Add Foxit Reader UAF Module and Docs
2018-08-21 08:21:51 -05:00
8f8d015741
changed some wording
2018-07-02 09:57:28 -05:00
54fce378fa
added target versions to documentation
2018-07-02 09:20:17 -05:00
3b5555542c
add exploit module and documentation
2018-06-29 15:17:12 -05:00
ca4ad1d0c4
Land #9478 , Improve Dup Scout BOF exploit
2018-02-07 23:51:14 -06:00
ab0d18669e
Doc Changes
2018-02-07 19:26:39 -06:00
e53500f397
Fixed Headings
2018-02-07 08:11:58 -06:00
e5b490c1c0
Remove weird sentence in cve_2017_8464_lnk_rce
2018-02-04 12:57:56 -05:00
bde2884e11
Fixes from review
2018-02-03 11:23:58 -05:00
2d8a249a56
Add intro header to office_ms17_11882
2018-02-02 14:12:36 -05:00
a7e9772e25
A few fixes for office_word_hta
...
- Add introduction header
- Fix `Vulnerable Application` header and make it plural (multiple apps)
- Remove unnecessary console line for example
2018-02-02 14:11:05 -05:00
daedf2a089
Fix word choice in cve_2017_8464_lnk_rce
...
- Also remove an unnecessary example step
2018-02-02 14:06:03 -05:00
559b592394
Corrected Documentation
2018-02-01 13:17:02 -06:00
bc18389284
Updated Document and Module
...
Update the documentation based on analysis of the vulnerability.
Slight modifications to the exploit module as well to reduce the
size of the generated file and reduce bad characters.
2018-02-01 10:05:50 -06:00
c1ff0c1e00
Dup Scout XML documentation
2018-01-24 20:47:02 +00:00
5fef8b43f6
Update and rename syncbreeze_xml.rb to syncbreeze_xml.md
2018-01-16 06:07:15 +00:00
ac724926db
Sync Breeze Import Command BOF Doc
2018-01-15 20:45:34 +00:00
b99663fb6c
Bring #9282 up to date with upstream-master
2017-12-13 13:16:30 -06:00
900f7d6f69
docs on options
2017-12-07 14:47:40 -05:00
12425d962c
Rename office_dde_delivery to office_dde_delivery.md
2017-12-06 22:40:57 -05:00
1e4b707a60
MS Office DDE Documentation
2017-12-06 21:46:47 -05:00
14226c5f33
missing docs on options
...
Missed fixes on documentation
2017-12-04 20:58:36 -05:00
b7f17f5519
fix documentation
2017-12-04 16:41:27 -05:00
fcf2cfa134
Create office_ms17_11882.md
2017-11-21 14:45:56 -05:00
da3ca9eb90
update some documentation
2017-08-03 17:09:44 -05:00
67dddd2402
Typo reported by @nixawk
2017-08-02 15:47:21 -05:00
3229320ba9
Code review feedback from @nixawk
2017-08-02 15:46:51 -05:00
565a3355be
CVE-2017-8464 LNK Remote Code Execution Vulnerability
...
This module exploits a vulnerability in the handling of Windows
Shortcut files (.LNK) that contain a dynamic icon, loaded from a
malicious DLL.
This vulnerability is a variant of MS15-020 (CVE-2015-0096). The
created LNK file is similar except in an additional
SpecialFolderDataBlock is included. The folder ID set in this
SpecialFolderDataBlock is set to the Control Panel. This is enought to
bypass the CPL whitelist. This bypass can be used to trick Windows into
loading an arbitrary DLL file.
2017-08-02 15:46:30 -05:00
6029a9ee2b
Use a built-in HTA server and update doc
2017-04-24 16:04:27 -05:00
0a085c4e83
add doc for exploit/windows/fileformat/office_word_hta
2017-04-18 03:26:10 -05:00
34f074441d
Move doc
2017-02-16 12:33:05 -06:00
e891063b74
Update doc
2017-02-03 14:29:29 -06:00
5db1d958b0
Update doc
2017-02-03 14:08:28 -06:00
6e692b1a1c
Update doc
2017-02-03 14:03:48 -06:00
f3f774b9c7
Add demo
2017-02-03 12:01:51 -06:00
92e065c21b
Update doc
2017-02-03 11:48:18 -06:00
2457968a24
Update doc
2017-02-03 11:45:34 -06:00
e9ba6fe7fd
Add doc
2017-02-02 20:42:46 -06:00
Jacob Robles